~ ZHPDiag v2015.7.12.88 Par Nicolas Coolman (2015/07/12) ~ Démarré par ALEXANDRE (Administrator) (2015/07/12 19:43:28) ~ Site: http://www.nicolascoolman.fr ~ Facebook: https://www.facebook.com/nicolascoolman1 ~ Etat de la version: Version OK ~ Mode: Scanner ~ Rapport: C:\Users\ALEXANDRE\Desktop\ZHPDiag.txt ~ Rapport: C:\Users\ALEXANDRE\AppData\Roaming\ZHP\ZHPDiag.txt ~ UAC: Activate ~ Démarrage du système: Normal (Normal boot) ~ Windows 8.1, 64-bit (Build 9600) ---\\ Navigateurs Internet (2) - 0s GCIE: Google Chrome v43.0.2357.130 MSIE: Internet Explorer v11.0.9600.17842 ---\\ Informations sur les produits Windows (3) - 8s ~ Windows Server License Manager Script : OK ~ Licence Script File Génération : OK Windows Activation Technologies : OK ---\\ Surveillance de Logiciels (1) - 2s Adobe Flash Player 18 NPAPI ---\\ Informations sur le système (6) - 0s ~ Operating System: Intel64 Family 6 Model 60 Stepping 3, GenuineIntel ~ Operating System: 64-bit ~ Boot mode: Normal (Normal boot) ~ Total physical RAM (KB): 8314900 ~ System Restore: Activé (Enable) ~ System drive C: has 630 GB free of 953 GB ---\\ Mode de connexion au système (3) - 0s ~ Computer Name: ALEXANDREPC ~ User Name: ALEXANDRE ~ Logged in as Administrator ---\\ Enumération des unités disques (3) - 0s ~ Drive C: has 630 GB free of 953 GB (System) ~ Drive E: has 67 GB free of 67 GB ~ Drive F: has 63 GB free of 63 GB ---\\ Recherche particulière de fichiers génériques (23) - 3s [MD5.C10A66189DC8C090E7C84873EDCEBC88] - (.Microsoft Corporation - Explorateur Windows.) () -- C:\WINDOWS\Explorer.exe [2501368] [MD5.6C308D32AFA41D26CE2A0EA8F7B79565] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) () -- C:\WINDOWS\System32\rundll32.exe [54784] [MD5.A570A64292214C43E0BA50E6A72A6380] - (.Microsoft Corporation - Application de démarrage de Windows.) () -- C:\WINDOWS\System32\Wininit.exe [145920] [MD5.417F80E4AFBA1AA9EBBD618F1C6D9165] - (.Microsoft Corporation - Extensions Internet pour Win32.) () -- C:\WINDOWS\System32\wininet.dll [2426880] [MD5.EC498BAE1F0D3E0E401C963F8D76C437] - (.Microsoft Corporation - Application d’ouverture de session Windows.) () -- C:\WINDOWS\System32\Winlogon.exe [572416] [MD5.AFCAB4DC692CCE37E283B00E2D7B438F] - (.Microsoft Corporation - Bibliothèque de licences.) () -- C:\WINDOWS\System32\sppcomapi.dll [447488] [MD5.E37F897ED7B5AFF79B1398258DB96BD9] - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) () -- C:\WINDOWS\System32\fr-FR\user32.dll.mui [19456] [MD5.374E27295F0A9DCAA8FC96370F9BEEA5] - (.Microsoft Corporation - Pilote de fonction connexe pour WinSock.) () -- C:\WINDOWS\System32\drivers\AFD.sys [563200] [MD5.74B14192CF79A72F7536B27CB8814FBD] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\WINDOWS\System32\drivers\atapi.sys [26464] [MD5.2FA6510E33F7DEFEC03658B74101A9B9] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\WINDOWS\System32\drivers\Cdfs.sys [88576] [MD5.C6796EA22B513E3457514D92DCDB1A3D] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\WINDOWS\System32\drivers\Cdrom.sys [164352] [MD5.A03F362C5557E238CBFA914689C77248] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\WINDOWS\System32\drivers\DfsC.sys [134144] [MD5.D4B7ED39C7900384D9E5C1283F1E7926] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\WINDOWS\System32\drivers\HDAudBus.sys [76800] [MD5.49EE0AE9E5B64FFBBD06D55C4984B598] - (.Microsoft Corporation - Pilote de port i8042.) () -- C:\WINDOWS\System32\drivers\i8042prt.sys [108544] [MD5.B7342B3C58E91107F6E946A93D9D4EFD] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\WINDOWS\System32\drivers\IpNat.sys [142848] [MD5.31233271EDE50D1BBB220F78AFA60486] - (.Microsoft Corporation - Minirdr SMB Windows NT.) () -- C:\WINDOWS\System32\drivers\MRxSmb.sys [405504] [MD5.0217532E19A748F0E5D569307363D5FD] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\WINDOWS\System32\drivers\netBT.sys [282624] [MD5.7F68063A5A0461E02BC860CE0E6BFDDC] - (.Microsoft Corporation - Pilote du système de fichiers NT.) () -- C:\WINDOWS\System32\drivers\ntfs.sys [2025792] [MD5.764B1121867B2D9B31C491668AC72B2B] - (.Microsoft Corporation - Pilote de port parallèle.) () -- C:\WINDOWS\System32\drivers\Parport.sys [94208] [MD5.1BD3022FD6E450B00DE560265638FD2A] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\WINDOWS\System32\drivers\Rasl2tp.sys [112640] [MD5.680C1DAE268B6FB67FA21B389A8B79EF] - (.Microsoft Corporation - Redirecteur de périphérique de Microsoft RD.) () -- C:\WINDOWS\System32\drivers\rdpdr.sys [195584] [MD5.FFF28F9F6823EB1756C60F1649560BBF] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\WINDOWS\System32\drivers\tdx.sys [107520] [MD5.64CA2B4A49A8EAF495E435623ECCE7DB] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) () -- C:\WINDOWS\System32\drivers\volsnap.sys [310080] ---\\ Processus lancés (25) - 12s [MD5.ACD4AF1B9D6E6C0C5BE470E5CF313FE6] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [814880] [PID.848] [MD5.2998362D1E550F0C990D77E34415BEB6] - (.AMD - AMD External Events Service Module.) -- C:\WINDOWS\system32\atiesrxx.exe [244736] [PID.988] [MD5.489EC8D956C41684206ACA32A8BBCF49] - (.IObit - IObit Malware Fighter Service.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [878880] [PID.1364] [MD5.95B960980034877821E7FB5BFE25136E] - (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) -- C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304] [PID.1548] [MD5.97715B4295C74B4D55B3445EEB9BD1F1] - (.BlueStack Systems, Inc. - BlueStacks Updater Service.) -- C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [822904] [PID.1576] [MD5.E6BDB63E8DBD8D6B2C1AB5C6B39ADB40] - (.IObit - Product Updater.) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2904864] [PID.1740] [MD5.F57A690656A8CACFABB78E30D1E71EE1] - (.Mobogenie.com - MobogenieService.exe.) -- C:\Program Files (x86)\Mobogenie3\MobogenieService.exe [127680] [PID.1816] =>PUP.Optional.Mobogenie [MD5.CAC9C36B2E28F3AE76FF62EA7523D71F] - (.AMD - AMD External Events Client Module.) -- C:\WINDOWS\system32\atieclxx.exe [774656] [PID.3000] [MD5.6009C7F55A71FA7F23692B92214A4CF8] - (.IObit - Performance Monitor.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\Monitor.exe [1774880] [PID.812] [MD5.DB367E8C8F46C26A05BA982715CC0DB5] - (.Pixart Imaging Inc - pximouse.) -- C:\Windows\System32\TiltWheelMouse.exe [241152] [PID.3184] [MD5.A22789E8003D9851C1380CB0EC8A14BE] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466648] [PID.1460] [MD5.8DACA62F3E15E45EBAF7AE51A609CBC1] - (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe [2892992] [PID.3004] [MD5.AC035726D6ECDBE4B8EF1B7C7D6D194E] - (.BitTorrent Inc. - BitTorrent.) -- C:\Users\ALEXANDRE\AppData\Roaming\BitTorrent\BitTorrent.exe [1579008] [PID.3900] [MD5.44A9229022A519ED45294A1934C05EEC] - (.Flux Software LLC - f.lux.) -- C:\Users\ALEXANDRE\AppData\Local\FluxSoftware\Flux\flux.exe [1017224] [PID.4324] [MD5.422963B9386FD4052AA766A6575ED8DE] - (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe [2429728] [PID.4676] [MD5.8EB78FB4564F9A162C8494976F514FCE] - (.IObit - iFreeUpMini.) -- C:\Program Files (x86)\IObit\iFreeUp\iFreeUpMini.exe [470304] [PID.4892] [MD5.BADF6C22FBAA3ED3E2413A60411425AC] - (.Advanced Micro Devices Inc. - Catalyst Control Center: Monitoring program.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe [299520] [PID.4916] [MD5.EF3E22DB024654232D9232CD16D37615] - (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe [888440] [PID.5032] [MD5.9D12F0AC68565E97C07B75314D53F2CE] - (...) -- C:\Program Files (x86)\Mobogenie3\MoboGenieHelper.exe [105152] [PID.4364] =>PUP.Optional.Mobogenie [MD5.7E8598353DC8054BFE7F27C985E94741] - (.ATI Technologies Inc. - Catalyst Control Center: Host application.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe [299520] [PID.4908] [MD5.7887DC888A1A7317DC828E59C56F33F6] - (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [5887264] [PID.3172] [MD5.D471F27FE3414238839979D4203143B3] - (.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe [1853632] [PID.4940] [MD5.0A3544D7E9AF7D8C991C904339157EDC] - (.Valve Corporation - Steam Client Service.) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe [837312] [PID.5764] [MD5.DADFE2A7E39FDD9163A2C77F9FA99EB4] - (.IObit - IObit Malware Fighter Tips.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFTips.exe [2060064] [PID.2280] [MD5.C1FBB24B8658AC984AA4C8B964013F0B] - (.Alexander Roshal - WinRAR archiver.) -- C:\Program Files (x86)\WinRAR\WinRAR.exe [1406928] [PID.1616] ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) (35) - 3s G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://search.conduit.com/?gd=&ctid=CT3324790&octid=EB_ORIGINAL_CTID&ISID=M3A8648D3-6E4E-4768-8AB4-08E8967A6EB3&SearchSource=55&CUI=&UM=5&UP=SP2DA505B7-04FD-4917-BF37-18D6C1760405&SSPV=" =>PUP.Optional.Conduit G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://search.conduit.com/?ctid=CT3322168&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPEE529AF4-BA30-495F-8979-4D28D87EAB72&SSPV=" =>PUP.Optional.Conduit G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://mysearch.avg.com/?cid={3ECC427B-BABF-4F8C-BBD5-8D83367947E6}&mid=d07904d6bfdb47d2a1cf0574381629d1-c6f0ba1a5ff43cc37d89bca8995106ef67d6a17b&lang=en&ds=ft012&coid=avgtbdisft&cmpid=&pr=sa&d=2014-01-30%2017:07:27&v=17.3.1.91&pid=safeguard&sg=&sap=hp" G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://www.search.ask.com/?o=APN10645A&gct=hp&d=406-484&v=a11465-216&t=4" =>Toolbar.Ask G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://search.gophoto.it/?pl=2&ch=v1admin_1402" =>PUP.Optional.GophotoIt G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=WDCXWD10EZEX-00KUWA0_WD-WCC1S710396203962&ts=1393421809" =>PUP.Optional.Qvo6 G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://www.buenosearch.com/?babsrc=HP_ss&mntrId=5A9810FEED11709E&affID=127101&tsp=5186" =>PUP.Optional.BuenoSearch G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://start.iminent.com/?appId={3ECC427B-BABF-4F8C-BBD5-8D83367947E6}&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPEE529AF4-BA30-495F-8979-4D28D87EAB72&SSPV= =>PUP.Optional.IMBooster G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://native-search.com/?channel=frg" G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://websearch.amaizingsearches.info/?pid=2144&r=2014/03/26&hid=13828101404267791527&lg=EN&cc=FR&unqvl=51" G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://feed.snapdo.com/?p=mKO_AwFzXIpYRbPBDDI6Pk-fpITtt_7-dx2uywuT-4gdlO2jttm7ixmiTfhItUDf8YO6xl8M51k_DIQJYCfLaiuTRetXD7H2D-waggIHy4STxW1d3SOFehF2wuiSoNjr0gXR7q5LFIDXdvW5XUG299cbB_Uh2vJEizwDL47RC6cWXkfOx6U6ZFEA7Q =>PUP.Optional.SmartBar G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://wisersearch.com/?channel=frg" G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://start.qone8.com/?type=hp&ts=1398098272&from=adks&uid=WDCXWD10EZEX-00KUWA0_WD-WCC1S710396203962" =>PUP.Optional.Qone8 G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://start.mysearchdial.com/?f=1&a=tele_14_17_ch&cd=2XzuyEtN2Y1L1Qzu0DyEtA0DyB0E0FtB0CtDtBtB0DyC0F0FtN0D0Tzu0SzzyEyEtN1L2XzutBtFtBtDtFtCtFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyEyCyEyBtDyCyBzztG0F0DtD0AtGyE0B0C0CtGtCtA0EyBtGyByEtCtCtAtB0E0EyC0CtB0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyBzztByDtByByCyDtG0EtDyB0CtG0FyCyB0AtG0AyE0B0DtGyBzytD0DtByDzz0ByC0AtDtA2Q&cr=1852856039&ir=" =>PUP.Optional.MySearchDial G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://start.qone8.com/?type=hp&ts=1398958440&from=ild&uid=WDCXWD10EZEX-00KUWA0_WD-WCC1S710396203962" =>PUP.Optional.Qone8 G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://start.qone8.com/?type=hppp&ts=1399110621&from=wpm0226&uid=WDCXWD10EZEX-00KUWA0_WD-WCC1S710396203962" =>PUP.Optional.Qone8 G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://start.qone8.com/?type=hppp&ts=1399116735&from=wpm0226&uid=WDCXWD10EZEX-00KUWA0_WD-WCC1S710396203962" =>PUP.Optional.Qone8 G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://start.qone8.com/?type=hppp&ts=1399281816&from=wpm0226&uid=WDCXWD10EZEX-00KUWA0_WD-WCC1S710396203962" =>PUP.Optional.Qone8 G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://start.qone8.com/?type=hppp&ts=1401021673&from=wpm0226&uid=WDCXWD10EZEX-00KUWA0_WD-WCC1S710396203962" =>PUP.Optional.Qone8 G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://websearch.flyandsearch.info/?pid=724&r=2014/08/28&hid=1985396777237964106&lg=EN&cc=FR" =>PUP.Optional.FlyAndSearch G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://wisersearch.com/?channel=fr" G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://websearch.flyandsearch.info/?pid=724&r=2014/09/08&hid=1985396777237964106&lg=EN&cc=FR" =>PUP.Optional.FlyAndSearch G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://astromenda.com/?f=7&a=ast_tele_14_37_ch&cd=2XzuyEtN2Y1L1Qzu0DyEtA0DyB0E0FtB0CtDtBtB0DyC0F0FtN0D0Tzu0SzyzzzztN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StAtCzytCyD0AyEtCtGzytD0DzztG0DyCyE0EtG0A0A0FtCtGtB0CyCtBtA0EtAyByCyByByB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CyCtC0FtByDtD0EtG0D0EzzzztGyE0AtDyDtG0BtCyEyEtGzzyByCtD0B0CtCzyyD0Bzz0C2Q&cr=1024513843&ir=" =>PUP.Optional.Astromenda G0 - GCSP: Secure Preferences [User Data\Default][HomePage] "http://astromenda.com/?f=7&a=ast_tele_14_37_ch&cd=2XzuyEtN2Y1L1Qzu0DyEtA0DyB0E0FtB0CtDtBtB0DyC0F0FtN0D0Tzu0SzyzzzztN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StAtCzytCyD0AyEtCtGzytD0DzztG0DyCyE0EtG0A0A0FtCtGtB0CyCtBtA0EtAyByCyByByB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CyCtC0FtByDtD0EtG0D0EzzzztGyE0AtDyDtG0BtCyEyEtGzzyByCtD0B0CtCzyyD0Bzz0C2Q&cr=1024513843&uref=308&ir=" =>PUP.Optional.Astromenda G2 - GCE: Extension [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest =>.Google Inc. G2 - GCE: Extension [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest =>.Google Inc. G2 - GCE: Extension [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest =>.Google Inc. G2 - GCE: Extension [User Data\Default] [beobeededemalmllhkmnkinmfembdimh] __MSG_tv_name__ G2 - GCE: Extension [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest =>.Google Inc. G2 - GCE: Extension [User Data\Default] [cbfongnabbfejdhkfkikcfjfhacdopai] Rainy Day G2 - GCE: Extension [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest =>.Google Inc. G2 - GCE: Extension [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module G2 - GCE: Extension [User Data\Default] [mihcahmgecmbnbcchbopgniflfhgnkff] __MSG_gmailcheck_name__ G2 - GCE: Extension [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest =>.Google Inc. G2 - GCE: Extension [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest =>.Google Inc. ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) (3) - 1s P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_203.dll P2 - FPN: [HKLM] [@java.com/DTPlugin,version=11.45.2] - (.Oracle Corporation.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=11.45.2] - (.Oracle Corporation.) -- C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) (15) - 1s R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/ R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer ---\\ Internet Explorer, Proxy Management (R5) (3) - 0s R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs (3) - 0s F2 - REG:system.ini: UserInit=userinit.exe (.Microsoft Corporation.) F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe (.Microsoft Corporation.) F2 - REG:system.ini: VMApplet=C:\WINDOWS\SysWOW64\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ---\\ Hosts file redirection (O1) (1) - 1s ~ Le fichier hôte est sain (The hosts file is clean) (30) ---\\ Browser Helper Object de navigateur (BHO) (O2) (3) - 0s O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: (no name) [64Bits] - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} (Orphean) O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll ---\\ Applications lancées au démarrage du sytème (O4) (20) - 2s O4 - HKLM\..\Run: [MouseDriver] . (.Pixart Imaging Inc - pximouse.) -- C:\WINDOWS\System32\TiltWheelMouse.exe O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_83C144E16873F12CA036EBE76429F6CB] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - HKCU\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe O4 - HKCU\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\ALEXANDRE\AppData\Roaming\BitTorrent\BitTorrent.exe O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - HKCU\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\ALEXANDRE\AppData\Local\FluxSoftware\Flux\flux.exe O4 - HKCU\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe O4 - HKLM\..\Wow6432Node\Run: [IObit Malware Fighter] . (.IObit - IObit Malware Fighter.) -- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe O4 - HKLM\..\Wow6432Node\Run: [iFreeUp] . (.IObit - iFreeUpMini.) -- C:\Program Files (x86)\IObit\iFreeUp\iFreeUpMini.exe O4 - HKLM\..\Wow6432Node\Run: [BlueStacks Agent] . (.BlueStack Systems, Inc. - BlueStacks Agent.) -- C:\Program Files (x86)\BlueStacks\HD-Agent.exe O4 - HKUS\S-1-5-21-3292045470-1738230893-110932257-1001\..\Run: [GoogleChromeAutoLaunch_83C144E16873F12CA036EBE76429F6CB] . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - HKUS\S-1-5-21-3292045470-1738230893-110932257-1001\..\Run: [Steam] . (.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe O4 - HKUS\S-1-5-21-3292045470-1738230893-110932257-1001\..\Run: [BitTorrent] . (.BitTorrent Inc. - BitTorrent.) -- C:\Users\ALEXANDRE\AppData\Roaming\BitTorrent\BitTorrent.exe O4 - HKUS\S-1-5-21-3292045470-1738230893-110932257-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - HKUS\S-1-5-21-3292045470-1738230893-110932257-1001\..\Run: [f.lux] . (.Flux Software LLC - f.lux.) -- C:\Users\ALEXANDRE\AppData\Local\FluxSoftware\Flux\flux.exe O4 - HKUS\S-1-5-21-3292045470-1738230893-110932257-1001\..\Run: [Advanced SystemCare 8] . (.IObit - Advanced SystemCare 8.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe O4 - HKUS\S-1-5-21-3292045470-1738230893-110932257-1001\..\Run: [DAEMON Tools Lite] . (.Disc Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe ---\\ Raccourcis Global Startup (O4G) (8) - 27s O4 - GS\Quicklaunch [Administrateur]: Dll-Files Fixer.lnk . (.Dll-FIles.Com - DLL-Files Fixer.) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer O4 - GS\Quicklaunch [Administrateur]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie O4 - GS\Quicklaunch [ALEXANDRE]: Dll-Files Fixer.lnk . (.Dll-FIles.Com - DLL-Files Fixer.) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer O4 - GS\Quicklaunch [ALEXANDRE]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie O4 - GS\Quicklaunch [Invité]: Dll-Files Fixer.lnk . (.Dll-FIles.Com - DLL-Files Fixer.) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer O4 - GS\Quicklaunch [Invité]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie O4 - GS\CommonDesktop [Public]: Dll-Files Fixer.lnk . (.Dll-FIles.Com - DLL-Files Fixer.) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer O4 - GS\CommonDesktop [Public]: Mobogenie3.lnk . (.Mobogenie.com - Mobogenie.exe.) C:\Program Files (x86)\Mobogenie3\Mobogenie.exe =>PUP.Optional.Mobogenie ---\\ Modification Domaine/Adresses DNS (O17) (4) - 0s O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 7.254.254.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.10 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 7.254.254.254 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.10 ---\\ Liste des services NT non Microsoft et non désactivés (O23) (8) - 1s O23 - Service: Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\WINDOWS\system32\atiesrxx.exe O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc. - BlueStacks Log Rotator Service.) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe O23 - Service: BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc. - BlueStacks Updater Service.) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe O23 - Service: IMF Service (IMFservice) . (.IObit - IObit Malware Fighter Service.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe O23 - Service: MobogenieService (MobogenieService) . (.Mobogenie.com - MobogenieService.exe.) - C:\Program Files (x86)\Mobogenie3\MobogenieService.exe =>PUP.Optional.Mobogenie O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe ---\\ Tâches planifiées en automatique (O39) (19) - 3s O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\ASC8_SkipUac_ALEXANDRE.job [274] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job [316] =>PUP.Optional.DllFilesFixer O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job [308] =>PUP.Optional.DllFilesFixer O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job [324] =>PUP.Optional.DllFilesFixer O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\RecordMyRun.job [402] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\Tasks\Uninstaller_SkipUac_ALEXANDRE.job [310] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater [3890] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASC8_PerformanceMonitor [3198] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\ASC8_SkipUac_ALEXANDRE [2382] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\DLL-Files FixerASKUSER [2904] =>PUP.Optional.DllFilesFixer O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY [3044] =>PUP.Optional.DllFilesFixer O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates [3058] =>PUP.Optional.DllFilesFixer O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\Driver Booster Scan [3246] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (ALEXANDRE) [2888] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\Driver Booster Update [3190] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\RecordMyRun [3296] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\StartMenu8Start [3082] O39 - APT:Automatic Planified Task - (...) -- C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_ALEXANDRE [2418] ---\\ Logiciels installés (O42) (62) - 29s O42 - Logiciel: DAEMON Tools Lite - (.Disc Soft Ltd.) [HKLM][64Bits] -- DAEMON Tools Lite O42 - Logiciel: PeerBlock 1.2 (r693) - (.PeerBlock, LLC.) [HKLM][64Bits] -- {015C5B35-B678-451C-9AEE-821E8D69621C}_is1 O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32 - (.Microsoft Corporation.) [HKLM][64Bits] -- {11EB1163-5761-4BC6-8F48-98DCF6A46BBF} O42 - Logiciel: Allgemeine Runtime Files (x86) - (.Sereby Corporation.) [HKLM][64Bits] -- {1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1 O42 - Logiciel: Java 7 Update 80 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F06417080FF} O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries - (.Microsoft Corporation.) [HKLM][64Bits] -- {5DE154DF-A55E-4FA5-BE59-32E78FCACF3E} O42 - Logiciel: Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framewo - (.Microsoft.) [HKLM][64Bits] -- {704C16B7-13DD-3656-96A0-4E456CCF75E6} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player NPAPI O42 - Logiciel: Advanced SystemCare 8 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare 8_is1 O42 - Logiciel: AviSynth 2.5 - (...) [HKLM][64Bits] -- AviSynth O42 - Logiciel: BlueStacks App Player - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- BlueStacks App Player O42 - Logiciel: CommView - (.TamoSoft.) [HKLM][64Bits] -- CommView O42 - Logiciel: Dll-Files Fixer - (.Dll-Files.com.) [HKLM][64Bits] -- Dll-Files Fixer_is1 =>PUP.Optional.DllFilesFixer O42 - Logiciel: Driver Booster 2.3 - (.IObit.) [HKLM][64Bits] -- Driver Booster_is1 O42 - Logiciel: Far Cry 4 - (.R.G. Mechanics, spider91.) [HKLM][64Bits] -- Far Cry 4_R.G. Mechanics_is1 O42 - Logiciel: ffdshow v1.3.4530 [2014-02-09] - (...) [HKLM][64Bits] -- ffdshow_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome O42 - Logiciel: iFreeUp 1.0 - (.IObit.) [HKLM][64Bits] -- iFreeUp_is1 O42 - Logiciel: Call of Duty(R) - World at War(TM) 1.6 Patch - (...) [HKLM][64Bits] -- InstallShield_{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C} O42 - Logiciel: Call of Duty(R) - World at War(TM) 1.3 Patch - (...) [HKLM][64Bits] -- InstallShield_{149464D9-B06F-4505-9968-FD1206F67AD3} O42 - Logiciel: Call of Duty(R) - World at War(TM) 1.2 Patch - (...) [HKLM][64Bits] -- InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE} O42 - Logiciel: Call of Duty(R) - World at War(TM) 1.4 Patch - (...) [HKLM][64Bits] -- InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4} O42 - Logiciel: Call of Duty(R) - World at War(TM) 1.1 Patch - (...) [HKLM][64Bits] -- InstallShield_{AFAE2B15-89A0-4215-A030-F7B5B478886B} O42 - Logiciel: Call of Duty(R) - World at War(TM) 1.5 Patch - (...) [HKLM][64Bits] -- InstallShield_{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E} O42 - Logiciel: Call of Duty(R) - World at War(TM) - (.Activision.) [HKLM][64Bits] -- InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F} O42 - Logiciel: IObit Malware Fighter 3 - (.IObit.) [HKLM][64Bits] -- IObit Malware Fighter_is1 O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM][64Bits] -- IObit Surfing Protection_is1 O42 - Logiciel: IObit Uninstaller - (.IObit.) [HKLM][64Bits] -- IObitUninstall O42 - Logiciel: Start Menu 8 - (.IObit.) [HKLM][64Bits] -- IObit_StartMenu8_is1 O42 - Logiciel: Action! - (.Mirillis.) [HKLM][64Bits] -- Mirillis Action! O42 - Logiciel: Mobogenie3 - (.Mobogenie.com.) [HKLM][64Bits] -- Mobogenie3 =>PUP.Optional.Mobogenie O42 - Logiciel: Rockstar Games Social Club - (.Rockstar Games.) [HKLM][64Bits] -- Rockstar Games Social Club O42 - Logiciel: Smart Defrag 4 - (.IObit.) [HKLM][64Bits] -- Smart Defrag 4_is1 O42 - Logiciel: SmoothVideo Project version 3.1.6 - (.SVP.) [HKLM][64Bits] -- SmoothVideo Project_is1 O42 - Logiciel: Steam - (.Valve Corporation.) [HKLM][64Bits] -- Steam O42 - Logiciel: Quake Live - (.id Software.) [HKLM][64Bits] -- Steam App 282440 O42 - Logiciel: BLOCKADE 3D - (.Shumkov Dmitriy.) [HKLM][64Bits] -- Steam App 302830 O42 - Logiciel: Garry's Mod - (.Facepunch Studios.) [HKLM][64Bits] -- Steam App 4000 O42 - Logiciel: Counter-Strike: Global Offensive - (.Valve.) [HKLM][64Bits] -- Steam App 730 O42 - Logiciel: LEGO Jurassic World - (...) [HKLM][64Bits] -- TEVHT0p1cmFzc2ljV29ybGQ=_is1 O42 - Logiciel: Tunngle - (.Tunngle.net GmbH.) [HKLM][64Bits] -- Tunngle_is1 O42 - Logiciel: WinRAR 5.21 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: Catalyst Control Center - (.AMD.) [HKLM][64Bits] -- WUCCCApp O42 - Logiciel: Skype™ 7.5 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {25A3B953-1423-3F15-640E-B620DD0F419A} O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF} O42 - Logiciel: Java 8 Update 45 - (.Oracle Corporation.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83218045F0} O42 - Logiciel: BlueStacks Notification Center - (.BlueStack Systems, Inc..) [HKLM][64Bits] -- {3792811C-832F-4392-B44A-24092901EDDC} O42 - Logiciel: Sleeping Dogs - (.Square Enix.) [HKLM][64Bits] -- {514B4279-7A0C-442C-BFCC-93D62FD04D85} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} O42 - Logiciel: Gameforge Live 2.0.8 - (.Gameforge.) [HKLM][64Bits] -- {9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1 O42 - Logiciel: CautTThePRice - (...) [HKLM][64Bits] -- {A2C98B47-B5F4-94AA-281D-4135416774CF} O42 - Logiciel: TERA - (.Gameforge Productions GmbH.) [HKLM][64Bits] -- {A2F166A0-F031-4E27-A057-C69733219434}_is1 O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {AA3B06B1-E89A-43C6-A26B-7109DB4BEE7B} O42 - Logiciel: Kingo ROOT version 1.3.9.2351 - (.Kingosoft Technology Ltd..) [HKLM][64Bits] -- {AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1 O42 - Logiciel: Trials Fusion - (.Black Box.) [HKLM][64Bits] -- {E6B9277D-AC15-4E88-BA86-0047D69B4A8C} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: VC Runtimes MSI - (.Microsoft.) [HKLM][64Bits] -- {FF29527A-44CD-3422-945E-981A13584000} O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKCU][64Bits] -- BitTorrent O42 - Logiciel: f.lux - (...) [HKCU][64Bits] -- Flux O42 - Logiciel: WinDirStat 1.1.2 - (...) [HKCU][64Bits] -- WinDirStat ---\\ HKCU & HKLM Software Keys (85) - 29s HKLM\SOFTWARE\Wow6432Node\Activision HKLM\SOFTWARE\Wow6432Node\Adobe HKLM\SOFTWARE\Wow6432Node\AppDataLow HKLM\SOFTWARE\Wow6432Node\ATI HKLM\SOFTWARE\Wow6432Node\ATI Technologies HKLM\SOFTWARE\Wow6432Node\AviSynth HKLM\SOFTWARE\Wow6432Node\BlueStacks HKLM\SOFTWARE\Wow6432Node\Caphyon HKLM\SOFTWARE\Wow6432Node\dll-files.com =>PUP.Optional.DllFilesFixer HKLM\SOFTWARE\Wow6432Node\Gameforge4d HKLM\SOFTWARE\Wow6432Node\GNU HKLM\SOFTWARE\Wow6432Node\Google HKLM\SOFTWARE\Wow6432Node\IM Providers HKLM\SOFTWARE\Wow6432Node\Intel HKLM\SOFTWARE\Wow6432Node\IObit HKLM\SOFTWARE\Wow6432Node\JavaSoft HKLM\SOFTWARE\Wow6432Node\JreMetrics HKLM\SOFTWARE\Wow6432Node\Khronos HKLM\SOFTWARE\Wow6432Node\Macromedia HKLM\SOFTWARE\Wow6432Node\Mobogenie3 =>PUP.Optional.Mobogenie HKLM\SOFTWARE\Wow6432Node\MozillaPlugins HKLM\SOFTWARE\Wow6432Node\MPC-HC HKLM\SOFTWARE\Wow6432Node\Nuance HKLM\SOFTWARE\Wow6432Node\ODBC HKLM\SOFTWARE\Wow6432Node\Rockstar Games HKLM\SOFTWARE\Wow6432Node\Skype HKLM\SOFTWARE\Wow6432Node\Square Enix HKLM\SOFTWARE\Wow6432Node\SRS Labs HKLM\SOFTWARE\Wow6432Node\SVP-Team HKLM\SOFTWARE\Wow6432Node\TERA HKLM\SOFTWARE\Wow6432Node\Tunngle.net HKLM\SOFTWARE\Wow6432Node\UGX-Mods HKLM\SOFTWARE\Wow6432Node\Valve HKLM\SOFTWARE\Wow6432Node\Volatile HKLM\SOFTWARE\Wow6432Node\WinRAR HKLM\SOFTWARE\Wow6432Node\RegisteredApplications HKCU\SOFTWARE\Adobe HKCU\SOFTWARE\AppDataLow HKCU\SOFTWARE\ATI HKCU\SOFTWARE\BitTorrent HKCU\SOFTWARE\CommView HKCU\SOFTWARE\Disc Soft HKCU\SOFTWARE\dll-files.com =>PUP.Optional.DllFilesFixer HKCU\SOFTWARE\Drivers HKCU\SOFTWARE\ej-technologies HKCU\SOFTWARE\Gameforge4d HKCU\SOFTWARE\GNU HKCU\SOFTWARE\Google HKCU\SOFTWARE\IM Providers HKCU\SOFTWARE\JavaSoft HKCU\SOFTWARE\JEDI-VCL HKCU\SOFTWARE\Licenses HKCU\SOFTWARE\Macromedia HKCU\SOFTWARE\Magnet HKCU\SOFTWARE\Michael Herf HKCU\SOFTWARE\Mirillis HKCU\SOFTWARE\Mobogenie =>PUP.Optional.Mobogenie HKCU\SOFTWARE\Mobogenie3 =>PUP.Optional.Mobogenie HKCU\SOFTWARE\MozillaPlugins HKCU\SOFTWARE\MPC-HC HKCU\SOFTWARE\Netscape HKCU\SOFTWARE\NLDT HKCU\SOFTWARE\Pixart HKCU\SOFTWARE\Realtek HKCU\SOFTWARE\RegisteredApplications HKCU\SOFTWARE\Rockstar Games HKCU\SOFTWARE\Seifert HKCU\SOFTWARE\Skype HKCU\SOFTWARE\SVP-Team HKCU\SOFTWARE\System32 HKCU\SOFTWARE\The Silicon Realms Toolworks HKCU\SOFTWARE\Trolltech HKCU\SOFTWARE\Tunngle.net HKCU\SOFTWARE\Unity HKCU\SOFTWARE\Unknown Worlds HKCU\SOFTWARE\Valve HKCU\SOFTWARE\WebApp HKCU\SOFTWARE\Win HKCU\SOFTWARE\WinRAR HKCU\SOFTWARE\WinRAR SFX HKCU\SOFTWARE\ZebHelpProcess Helper HKCU\SOFTWARE\AppDataLow\Software HKCU\SOFTWARE\AppDataLow\Software\Adobe HKCU\SOFTWARE\AppDataLow\Software\JavaSoft HKCU\SOFTWARE\AppDataLow\Software\Macromedia ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) (185) - 31s O43 - CFD: 2015/06/17 15:38:05 - [] D -- C:\Program Files (x86)\Activision O43 - CFD: 2015/06/24 16:16:39 - [] D -- C:\Program Files (x86)\ATI Technologies O43 - CFD: 2015/06/21 23:34:38 - [] D -- C:\Program Files (x86)\AviSynth 2.5 O43 - CFD: 2015/06/25 16:17:13 - [] D -- C:\Program Files (x86)\BlueStacks O43 - CFD: 2015/06/25 14:20:59 - [] D -- C:\Program Files (x86)\CautTThePRice O43 - CFD: 2015/06/24 15:49:57 - [] D -- C:\Program Files (x86)\Common Files O43 - CFD: 2015/06/22 22:21:33 - [] D -- C:\Program Files (x86)\CommView O43 - CFD: 2015/06/25 14:53:50 - [] D -- C:\Program Files (x86)\Dll-Files.com Fixer =>PUP.Optional.DllFilesFixer O43 - CFD: 2015/06/21 23:34:49 - [] D -- C:\Program Files (x86)\ffdshow O43 - CFD: 2015/06/21 14:37:28 - [] D -- C:\Program Files (x86)\GameforgeLive O43 - CFD: 2015/06/17 14:35:58 - [] D -- C:\Program Files (x86)\Google O43 - CFD: 2015/06/17 16:10:32 - [] D -- C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 2015/07/12 19:21:10 - [] D -- C:\Program Files (x86)\Internet Explorer O43 - CFD: 2015/06/25 08:14:27 - [] D -- C:\Program Files (x86)\IObit O43 - CFD: 2015/06/25 15:11:27 - [] D -- C:\Program Files (x86)\Java O43 - CFD: 2015/06/20 12:58:25 - [] D -- C:\Program Files (x86)\Kingo ROOT O43 - CFD: 2015/06/24 20:48:06 - [] D -- C:\Program Files (x86)\LEGO Jurassic World O43 - CFD: 2015/06/23 22:10:36 - [0] D -- C:\Program Files (x86)\Microsoft O43 - CFD: 2015/06/23 20:54:41 - [] D -- C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 2015/06/23 22:18:40 - [] D -- C:\Program Files (x86)\Microsoft Visual Studio 9.0 O43 - CFD: 2015/06/23 22:15:17 - [] D -- C:\Program Files (x86)\Microsoft.NET O43 - CFD: 2015/06/18 18:54:43 - [] D -- C:\Program Files (x86)\Mirillis O43 - CFD: 2015/06/25 09:19:18 - [] D -- C:\Program Files (x86)\Mobogenie3 =>PUP.Optional.Mobogenie O43 - CFD: 2015/06/23 21:51:01 - [] D -- C:\Program Files (x86)\MSBuild O43 - CFD: 2015/06/22 22:24:42 - [0] D -- C:\Program Files (x86)\R.G. Mechanics O43 - CFD: 2015/06/23 21:51:01 - [] D -- C:\Program Files (x86)\Reference Assemblies O43 - CFD: 2015/06/21 16:26:44 - [] D -- C:\Program Files (x86)\Rockstar Games O43 - CFD: 2015/06/17 16:17:38 - [] RD -- C:\Program Files (x86)\Skype O43 - CFD: 2015/06/17 20:36:36 - [] D -- C:\Program Files (x86)\Sleeping Dogs O43 - CFD: 2015/07/12 19:04:41 - [] D -- C:\Program Files (x86)\Steam O43 - CFD: 2015/06/21 23:34:55 - [] D -- C:\Program Files (x86)\SVP O43 - CFD: 2015/06/24 19:26:12 - [] D -- C:\Program Files (x86)\Trials Fusion O43 - CFD: 2015/06/17 15:53:55 - [] D -- C:\Program Files (x86)\Tunngle O43 - CFD: 2015/06/17 14:28:03 - [0] HD -- C:\Program Files (x86)\Uninstall Information O43 - CFD: 2015/06/23 21:21:16 - [] D -- C:\Program Files (x86)\WinDirStat O43 - CFD: 2015/06/22 23:51:42 - [] D -- C:\Program Files (x86)\Windows Defender O43 - CFD: 2015/06/22 23:50:00 - [] D -- C:\Program Files (x86)\Windows Mail O43 - CFD: 2015/06/22 23:50:00 - [] D -- C:\Program Files (x86)\Windows Media Player O43 - CFD: 2015/06/22 23:50:00 - [] D -- C:\Program Files (x86)\Windows Multimedia Platform O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\Windows NT O43 - CFD: 2015/06/22 23:49:57 - [] D -- C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 2015/06/22 23:50:00 - [] D -- C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 2013/08/22 17:36:30 - [] SHD -- C:\Program Files (x86)\Windows Sidebar O43 - CFD: 2013/08/22 17:36:30 - [] D -- C:\Program Files (x86)\WindowsPowerShell O43 - CFD: 2015/06/17 14:39:19 - [] D -- C:\Program Files (x86)\WinRAR O43 - CFD: 2015/06/22 23:51:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 2015/06/22 23:51:44 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/07/12 19:21:01 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/06/24 15:49:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 8 O43 - CFD: 2015/06/24 16:16:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center O43 - CFD: 2015/06/21 23:34:41 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5 O43 - CFD: 2015/06/25 16:14:22 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks O43 - CFD: 2015/06/22 21:22:09 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CommView O43 - CFD: 2015/06/17 15:33:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite O43 - CFD: 2015/06/25 14:53:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer =>PUP.Optional.DllFilesFixer O43 - CFD: 2015/06/24 15:53:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 2 O43 - CFD: 2015/06/21 23:34:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ffdshow O43 - CFD: 2015/06/21 14:38:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live O43 - CFD: 2015/06/17 14:36:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 2015/06/24 16:17:18 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V O43 - CFD: 2015/06/25 08:15:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iFreeUp O43 - CFD: 2015/06/24 15:50:38 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter O43 - CFD: 2015/06/24 15:50:04 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller O43 - CFD: 2015/06/25 15:11:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java O43 - CFD: 2015/06/20 12:57:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kingo ROOT O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/06/23 20:55:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight O43 - CFD: 2015/06/23 22:14:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2008 O43 - CFD: 2015/06/18 18:54:50 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis O43 - CFD: 2015/06/25 08:39:14 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 =>PUP.Optional.Mobogenie O43 - CFD: 2015/06/17 15:12:45 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeerBlock O43 - CFD: 2015/06/22 22:14:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics O43 - CFD: 2015/06/17 16:17:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype O43 - CFD: 2015/06/17 20:36:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sleeping Dogs O43 - CFD: 2015/06/24 15:53:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4 O43 - CFD: 2015/06/24 15:53:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8 O43 - CFD: 2013/08/22 17:36:33 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp O43 - CFD: 2015/06/17 14:39:59 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam O43 - CFD: 2015/06/21 23:34:57 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SVP 3.1 O43 - CFD: 2015/06/24 16:17:18 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Switch Off O43 - CFD: 2015/06/22 23:51:19 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 2013/08/23 00:26:19 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC O43 - CFD: 2015/06/17 15:53:25 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle O43 - CFD: 2015/06/23 22:15:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual C++ 9.0 Express Edition O43 - CFD: 2015/06/23 21:21:16 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinDirStat O43 - CFD: 2015/06/17 14:39:19 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 2015/06/25 14:21:08 - [] D -- C:\ProgramData\10795058895190637417 O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Application Data O43 - CFD: 2015/06/24 18:08:17 - [] D -- C:\ProgramData\ATI O43 - CFD: 2015/06/25 16:14:25 - [] D -- C:\ProgramData\BlueStacks O43 - CFD: 2015/06/25 16:19:46 - [] D -- C:\ProgramData\BlueStacksSetup O43 - CFD: 2015/06/17 14:23:29 - [0] SHD -- C:\ProgramData\Bureau O43 - CFD: 2015/06/17 15:33:10 - [] D -- C:\ProgramData\DAEMON Tools Lite O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Desktop O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Documents O43 - CFD: 2015/06/24 15:53:17 - [] D -- C:\ProgramData\IObit O43 - CFD: 2015/06/25 14:20:21 - [] D -- C:\ProgramData\jgglpeebabnaaalglaekmckjkbeijiak O43 - CFD: 2015/06/25 14:53:52 - [] D -- C:\ProgramData\Logs O43 - CFD: 2015/06/17 14:23:29 - [0] SHD -- C:\ProgramData\Menu Démarrer O43 - CFD: 2015/06/23 22:15:55 - [] SD -- C:\ProgramData\Microsoft O43 - CFD: 2015/06/23 22:18:48 - [] D -- C:\ProgramData\Microsoft Help O43 - CFD: 2015/06/18 18:56:12 - [] D -- C:\ProgramData\Mirillis O43 - CFD: 2015/06/17 14:23:29 - [0] SHD -- C:\ProgramData\Modèles O43 - CFD: 2015/06/21 19:55:38 - [] D -- C:\ProgramData\Oracle O43 - CFD: 2015/06/25 15:14:11 - [] D -- C:\ProgramData\Package Cache O43 - CFD: 2015/07/12 18:53:22 - [] D -- C:\ProgramData\ProductData O43 - CFD: 2015/06/22 23:49:56 - [] D -- C:\ProgramData\regid.1991-06.com.microsoft O43 - CFD: 2015/06/17 16:17:26 - [] D -- C:\ProgramData\Skype O43 - CFD: 2015/06/20 13:06:49 - [] D -- C:\ProgramData\Socialclub O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Start Menu O43 - CFD: 2015/06/20 13:06:48 - [] D -- C:\ProgramData\Steam O43 - CFD: 2015/06/21 19:55:59 - [] D -- C:\ProgramData\Sun O43 - CFD: 2015/06/21 23:35:26 - [] D -- C:\ProgramData\SVP 3.1 O43 - CFD: 2015/06/22 21:22:15 - [] D -- C:\ProgramData\TamoSoft O43 - CFD: 2015/06/25 14:53:51 - [] D -- C:\ProgramData\TEMP O43 - CFD: 2013/08/22 16:45:52 - [0] SHD -- C:\ProgramData\Templates O43 - CFD: 2015/06/22 22:25:40 - [] D -- C:\ProgramData\Tunngle O43 - CFD: 2015/06/25 14:19:31 - [] D -- C:\ProgramData\{5fc3357c-4884-ecfa-5fc3-3357c488d5f1} O43 - CFD: 2015/06/24 15:50:01 - [0] D -- C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} O43 - CFD: 2015/06/24 15:49:57 - [] D -- C:\Program Files (x86)\Common Files\IObit O43 - CFD: 2015/06/21 19:55:58 - [] D -- C:\Program Files (x86)\Common Files\Java O43 - CFD: 2015/06/23 22:15:24 - [] D -- C:\Program Files (x86)\Common Files\Merge Modules O43 - CFD: 2015/06/24 20:12:16 - [] D -- C:\Program Files (x86)\Common Files\Microsoft Shared O43 - CFD: 2013/08/22 17:36:33 - [] D -- C:\Program Files (x86)\Common Files\Services O43 - CFD: 2015/06/17 16:17:38 - [] D -- C:\Program Files (x86)\Common Files\Skype O43 - CFD: 2015/06/17 16:34:10 - [] D -- C:\Program Files (x86)\Common Files\Steam O43 - CFD: 2015/06/22 23:49:56 - [] D -- C:\Program Files (x86)\Common Files\System O43 - CFD: 2015/06/21 11:16:11 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\.minecraft O43 - CFD: 2015/06/23 11:44:13 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\.Paladium O43 - CFD: 2015/06/21 11:07:40 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\.Paladiumbeta O43 - CFD: 2015/06/17 14:28:12 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Adobe O43 - CFD: 2015/06/24 15:50:03 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Apple Computer O43 - CFD: 2015/06/17 18:23:41 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\ATI O43 - CFD: 2015/06/24 16:15:53 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Azureus O43 - CFD: 2015/07/12 19:44:23 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\BitTorrent O43 - CFD: 2015/06/25 08:02:46 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 2015/06/25 14:53:58 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\dll-files.com =>PUP.Optional.DllFilesFixer O43 - CFD: 2015/06/22 22:14:09 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Far Cry 4 O43 - CFD: 2015/06/23 11:21:43 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Identities O43 - CFD: 2015/06/25 08:14:27 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\IObit O43 - CFD: 2015/06/17 14:36:12 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Macromedia O43 - CFD: 2015/06/25 16:14:13 - [] SD -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft O43 - CFD: 2015/06/18 18:56:12 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Mirillis O43 - CFD: 2015/06/25 13:28:26 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Mobogenie =>PUP.Optional.Mobogenie O43 - CFD: 2015/06/24 15:50:46 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\ProductData O43 - CFD: 2015/07/12 19:41:30 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Skype O43 - CFD: 2015/06/21 14:38:18 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\TERA O43 - CFD: 2015/06/22 22:25:40 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Tunngle O43 - CFD: 2015/06/17 15:44:49 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\WinRAR O43 - CFD: 2015/07/12 19:44:29 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\ZHP O43 - CFD: 2015/06/17 16:11:19 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Activision O43 - CFD: 2015/06/25 08:16:13 - [0] D -- C:\Users\ALEXANDRE\AppData\Local\Adobe O43 - CFD: 2015/06/17 14:20:40 - [0] SHD -- C:\Users\ALEXANDRE\AppData\Local\Application Data O43 - CFD: 2015/06/17 18:23:41 - [] D -- C:\Users\ALEXANDRE\AppData\Local\ATI O43 - CFD: 2015/06/25 16:13:59 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Bluestacks O43 - CFD: 2015/07/12 15:25:39 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Diagnostics O43 - CFD: 2015/06/21 23:30:52 - [] D -- C:\Users\ALEXANDRE\AppData\Local\FluxSoftware O43 - CFD: 2015/06/21 14:37:50 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Gameforge4d O43 - CFD: 2015/06/17 14:36:18 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Google O43 - CFD: 2015/06/25 11:03:53 - [] D -- C:\Users\ALEXANDRE\AppData\Local\GWX O43 - CFD: 2015/06/17 14:20:40 - [0] SHD -- C:\Users\ALEXANDRE\AppData\Local\Historique O43 - CFD: 2015/06/20 12:57:57 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Kingosoft O43 - CFD: 2015/07/12 15:25:29 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Microsoft O43 - CFD: 2015/06/23 22:15:47 - [0] D -- C:\Users\ALEXANDRE\AppData\Local\Microsoft Help O43 - CFD: 2015/06/18 18:56:12 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Mirillis O43 - CFD: 2015/06/17 14:28:12 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Packages O43 - CFD: 2015/06/17 14:31:00 - [0] D -- C:\Users\ALEXANDRE\AppData\Local\PackageStaging O43 - CFD: 2015/06/17 15:12:38 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Programs O43 - CFD: 2015/06/20 13:10:02 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Rockstar Games O43 - CFD: 2015/06/17 16:17:47 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Skype O43 - CFD: 2015/06/17 14:41:22 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Steam O43 - CFD: 2015/07/12 19:45:27 - [] D -- C:\Users\ALEXANDRE\AppData\Local\Temp O43 - CFD: 2015/06/17 14:20:40 - [0] SHD -- C:\Users\ALEXANDRE\AppData\Local\Temporary Internet Files O43 - CFD: 2015/06/17 20:36:47 - [] D -- C:\Users\ALEXANDRE\AppData\Local\VirtualStore O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 2015/06/23 21:12:24 - [] RD -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 2015/06/21 23:34:38 - [0] D -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AviSynth 2.5 O43 - CFD: 2015/06/21 23:30:55 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux O43 - CFD: 2013/08/22 17:36:32 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 2015/06/23 21:12:24 - [] RD -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 2015/06/25 16:21:20 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam O43 - CFD: 2013/08/22 17:36:32 - [] RD -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools O43 - CFD: 2015/06/23 21:21:16 - [0] D -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinDirStat O43 - CFD: 2015/06/17 14:39:19 - [] D -- C:\Users\ALEXANDRE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR ---\\ Liste des pilotes du système (SDL) (O58) (47) - 13s O58 - SDL:2013/08/22 14:43:41 A . (.LSI - LSI 3ware SCSI Storport Driver.) -- C:\WINDOWS\System32\drivers\3ware.sys [108896] O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra - PMC-Sierra Storport Driver For SPC8x6G SAS.) -- C:\WINDOWS\System32\drivers\adp80xx.sys [782176] O58 - SDL:2015/06/24 16:12:00 A . (.Advanced Micro Devices - AMD ACP Binaries.) -- C:\WINDOWS\System32\drivers\amdacpksd.sys [294600] O58 - SDL:2015/06/24 16:08:14 A . (.Windows (R) Win 7 DDK provider - KSL Kernel-Mode Dll.) -- C:\WINDOWS\System32\drivers\amdacpksl.sys [143360] O58 - SDL:2013/08/22 14:43:41 A . (.Advanced Micro Devices - AHCI 1.3 Device Driver.) -- C:\WINDOWS\System32\drivers\amdsata.sys [79200] O58 - SDL:2013/08/22 14:43:41 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\WINDOWS\System32\drivers\amdsbs.sys [259424] O58 - SDL:2013/08/22 14:43:40 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\WINDOWS\System32\drivers\amdxata.sys [25952] O58 - SDL:2013/08/22 14:43:41 A . (.PMC-Sierra, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\WINDOWS\System32\drivers\arcsas.sys [114016] O58 - SDL:2015/06/24 18:10:28 A . (.Advanced Micro Devices - AMD High Definition Audio Function Driver.) -- C:\WINDOWS\System32\drivers\AtihdWB6.sys [102912] O58 - SDL:2015/06/24 16:12:07 A . (.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) -- C:\WINDOWS\System32\drivers\atikmdag.sys [18959360] O58 - SDL:2015/06/24 16:12:07 A . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\WINDOWS\System32\drivers\atikmpag.sys [589312] O58 - SDL:2013/08/13 01:25:46 A . (.Windows (R) Win 7 DDK provider - BCM Function 2 Device Driver.) -- C:\WINDOWS\System32\drivers\bcmfn2.sys [17624] O58 - SDL:2013/08/22 14:43:41 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\WINDOWS\System32\drivers\bxvbda.sys [531296] O58 - SDL:2009/06/17 21:41:12 A . (.TamoSoft - CommView Driver for Windows XP/2003/Vista/2.) -- C:\WINDOWS\System32\drivers\cv2k1.sys [21544] O58 - SDL:2015/06/17 15:33:15 A . (.Disc Soft Ltd - DAEMON Tools Lite Virtual SCSI Bus Driver.) -- C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30352] O58 - SDL:2013/08/22 14:43:45 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\WINDOWS\System32\drivers\evbda.sys [3357024] O58 - SDL:2013/08/22 14:43:45 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\WINDOWS\System32\drivers\HpSAMD.sys [64352] O58 - SDL:2013/07/30 20:47:35 A . (.Intel Corporation - Intel(R) Serial IO GPIO Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys [24568] O58 - SDL:2013/07/25 21:05:39 A . (.Intel Corporation - Intel(R) Serial IO I2C Controller Driver.) -- C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys [99320] O58 - SDL:2015/06/24 16:13:16 A . (.Intel Corporation - Intel(R) Rapid Storage Technology driver -.) -- C:\WINDOWS\System32\drivers\iaStorA.sys [1399536] O58 - SDL:2013/08/10 02:39:30 A . (.Intel Corporation - Intel Rapid Storage Technology driver (inbo.) -- C:\WINDOWS\System32\drivers\iaStorAV.sys [651248] O58 - SDL:2013/08/22 14:43:45 A . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\WINDOWS\System32\drivers\iaStorV.sys [412000] O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas.sys [109408] O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas2.sys [93536] O58 - SDL:2013/08/22 14:43:44 A . (.LSI Corporation - LSI SAS Gen3 Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sas3.sys [81760] O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - LSI SSS PCIe/Flash Driver (StorPort).) -- C:\WINDOWS\System32\drivers\lsi_sss.sys [82784] O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\WINDOWS\System32\drivers\megasas.sys [56672] O58 - SDL:2013/08/22 14:43:45 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\WINDOWS\System32\drivers\megasr.sys [575840] O58 - SDL:2013/08/22 14:43:49 A . (.Marvell Semiconductor, Inc. - Marvell Flash Controller Driver.) -- C:\WINDOWS\System32\drivers\mvumis.sys [63840] O58 - SDL:2013/08/22 14:43:31 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\WINDOWS\System32\drivers\nvraid.sys [150368] O58 - SDL:2013/08/22 14:43:32 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\WINDOWS\System32\drivers\nvstor.sys [168288] O58 - SDL:2015/06/24 16:07:30 A . (.Realtek - Realtek 8101E/8168/8169 NDIS 6.30 64-bit Dr.) -- C:\WINDOWS\System32\drivers\Rt630x64.sys [881368] O58 - SDL:2015/06/24 15:58:53 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\WINDOWS\System32\drivers\RTKVHD64.sys [4464344] O58 - SDL:2013/08/22 17:35:09 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\WINDOWS\System32\drivers\secdrv.sys [23040] O58 - SDL:2013/08/22 14:43:31 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid2.sys [44896] O58 - SDL:2013/08/22 14:43:32 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\WINDOWS\System32\drivers\sisraid4.sys [81760] O58 - SDL:2014/06/04 15:17:30 A . (.IObit - SmartDefrag Driver.) -- C:\WINDOWS\System32\drivers\SmartDefragDriver.sys [21184] O58 - SDL:2015/06/24 18:13:20 A . (.Synaptics Incorporated - Synaptics SMBus Driver.) -- C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [33520] O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudbus.sys [108800] O58 - SDL:2014/01/22 08:52:10 A . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ve.) -- C:\WINDOWS\System32\drivers\ssudmdm.sys [206080] O58 - SDL:2013/08/22 14:43:32 A . (.Promise Technology, Inc. - Promise SuperTrak EX Series Driver for Wind.) -- C:\WINDOWS\System32\drivers\stexstor.sys [31072] O58 - SDL:2009/09/16 07:02:42 A . (.Tunngle.net - TAP-Win32 Virtual Network Driver.) -- C:\WINDOWS\System32\drivers\tap0901t.sys [31232] O58 - SDL:2015/06/24 16:13:34 A . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\WINDOWS\System32\drivers\TeeDriverx64.sys [129312] O58 - SDL:2013/04/09 10:42:06 A . (...) -- C:\WINDOWS\System32\drivers\t_mouse.sys [6144] O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\WINDOWS\System32\drivers\viaide.sys [19808] O58 - SDL:2013/08/22 14:43:34 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\WINDOWS\System32\drivers\vsmraid.sys [168800] O58 - SDL:2013/08/22 14:43:34 A . (.VIA Corporation - VIA StorX RAID Controller Driver.) -- C:\WINDOWS\System32\drivers\VSTXRAID.SYS [305504] ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) (2) - 94s O61 - LFC: 2015/07/12 19:04:15 A . (..) -- C:\Users\ALEXANDRE\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin [1113849] O61 - LFC: 2015/07/12 19:04:27 A . (..) -- C:\Users\ALEXANDRE\AppData\Local\ATI\ACE\Manifest.Bin [28678] ---\\ Associations Shell Spawning (O67) (9) - 0s O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.scr> [HKLM\..\open\Command] (...) -- "%1" /S ---\\ Menu de démarrage Internet (SMI) (O68) (8) - 0s O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) (1) - 1s O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} [DefaultScope] - (Bing) - http://www.bing.com/ ---\\ Enumère les services démarrés par Svchost (SSS) (O83) (34) - 4s O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\WINDOWS\System32\aelupsvc.dll [214528] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\WINDOWS\System32\certprop.dll [156160] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\WINDOWS\system32\srvsvc.dll [329216] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\WINDOWS\System32\gpsvc.dll [1360896] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\WINDOWS\System32\ikeext.dll [1084416] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\WINDOWS\System32\iphlpsvc.dll [926208] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\WINDOWS\system32\seclogon.dll [31744] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\WINDOWS\System32\appinfo.dll [110080] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\WINDOWS\system32\iscsiexe.dll [151040] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\WINDOWS\System32\eapsvc.dll [110592] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [1265152] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [230400] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\WINDOWS\system32\mmcss.dll [71168] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\WINDOWS\System32\browser.dll [135168] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\WINDOWS\system32\profsvc.dll [227328] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll [339968] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\WINDOWS\System32\wercplsupport.dll [84992] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\system32\kmsvc.dll [101376] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\WINDOWS\System32\bdesvc.dll [348672] O83 - Search Svchost Services: lfsvc (lfsvc) . (.Microsoft Corporation - Service d’infrastructure de localisation Wi.) -- C:\Windows\System32\GeofenceMonitorService.dll [522240] O83 - Search Svchost Services: wlidsvc (wlidsvc) . (.Microsoft Corporation - Service de compte Microsoft®.) -- C:\WINDOWS\system32\wlidsvc.dll [1639424] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\WINDOWS\system32\themeservice.dll [59392] O83 - Search Svchost Services: DsmSvc (DsmSvc) . (.Microsoft Corporation - Gestionnaire d’installation de périphérique.) -- C:\WINDOWS\System32\DeviceSetupManager.dll [206848] O83 - Search Svchost Services: NcaSvc (NcaSvc) . (.Microsoft Corporation - Service Assistant Connectivité réseau Micro.) -- C:\WINDOWS\System32\ncasvc.dll [166400] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\WINDOWS\System32\rasauto.dll [102912] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire des connexions d’accès à dista.) -- C:\WINDOWS\System32\rasmans.dll [542208] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [226816] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\WINDOWS\System32\sens.dll [73728] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\WINDOWS\System32\ipnathlp.dll [452608] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll [313344] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\WINDOWS\system32\wuaueng.dll [3682304] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\WINDOWS\System32\qmgr.dll [933376] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [640000] ---\\ Liste des exceptions du parefeu (FirewallRules) (O87) (33) - 8s O87 - FAEL: "{6BCCC902-C44F-4197-B2A8-E247E03A25D8}" [In-None-P6-TRUE] .(.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe O87 - FAEL: "{20635554-36A5-410A-A25F-219A8A18C3FA}" [In-None-P17-TRUE] .(.Valve Corporation - Steam Client Bootstrapper.) -- C:\Program Files (x86)\Steam\Steam.exe O87 - FAEL: "{3D4CBDF6-8C6B-428D-A72E-1180A5BFCDD8}" [In-None-P6-TRUE] .(.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe O87 - FAEL: "{7CFEB020-DF16-404B-A6F2-178C7035C5F8}" [In-None-P17-TRUE] .(.Valve Corporation - Steam Client WebHelper.) -- C:\Program Files (x86)\Steam\bin\steamwebhelper.exe O87 - FAEL: "{9C46B804-1B81-45B1-8FE4-416A59A9150A}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe O87 - FAEL: "{9C6AFA0A-70AF-4388-B61D-7679628E6E93}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe O87 - FAEL: "{DAE939D3-D3AF-49E3-A36B-436D28364FB2}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe O87 - FAEL: "{4A1E0E02-E521-4989-898F-6F60E21E1DE1}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe O87 - FAEL: "{FC177AE1-8759-49AC-9040-15C5DB71C91E}" [In-None-P6-TRUE] .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\ALEXANDRE\AppData\Roaming\BitTorrent\BitTorrent.exe O87 - FAEL: "{A321D075-0439-4C37-BFA5-8C47319CE01E}" [In-None-P17-TRUE] .(.BitTorrent Inc. - BitTorrent.) -- C:\Users\ALEXANDRE\AppData\Roaming\BitTorrent\BitTorrent.exe O87 - FAEL: "{2B3B69BC-205E-45BC-88CC-DAD736C4637A}" [In-None-P6-TRUE] .(.Tunngle.net GmbH - Tunngle Service.) -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe O87 - FAEL: "{2AE3C16B-2E59-421C-80C3-A97768886C7C}" [In-None-P17-TRUE] .(.Tunngle.net GmbH - Tunngle Service.) -- C:\Program Files (x86)\Tunngle\TnglCtrl.exe O87 - FAEL: "{EEB8C411-F633-46F9-ADCE-F884648ADAFF}" [In-None-P6-TRUE] .(.Tunngle.net GmbH - Tunngle GUI.) -- C:\Program Files (x86)\Tunngle\Tunngle.exe O87 - FAEL: "{9021E675-1F10-490C-94AB-9CE6BC791C24}" [In-None-P17-TRUE] .(.Tunngle.net GmbH - Tunngle GUI.) -- C:\Program Files (x86)\Tunngle\Tunngle.exe O87 - FAEL: "{BE72C126-73A2-4393-B76A-A0E426A94A5E}" [In-None-P6-TRUE] .(.Activision Blizzard, Inc. - Call of Duty(R): World at War Campaign/Coop.) -- C:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe O87 - FAEL: "{BDAD68E2-1E61-481F-AABE-A3BE8D8CE31C}" [In-None-P17-TRUE] .(.Activision Blizzard, Inc. - Call of Duty(R): World at War Campaign/Coop.) -- C:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe O87 - FAEL: "{768EFB3F-4CB6-46A1-80F4-DA6502E3EB13}" [In-None-P6-TRUE] .(.Activision Blizzard, Inc. - Call of Duty(R): World at War Multiplayer.) -- C:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe O87 - FAEL: "{812808E2-5BD7-4670-80D4-8D907652520A}" [In-None-P17-TRUE] .(.Activision Blizzard, Inc. - Call of Duty(R): World at War Multiplayer.) -- C:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe O87 - FAEL: "{4E89FB39-E6CF-44FD-8DC5-BEA948E0858B}" [Out-None-P17-TRUE] .(.Mirillis Ltd. - Action!.) -- C:\Program Files (x86)\Mirillis\Action!\Action.exe O87 - FAEL: "{3124C5EE-CD46-4699-90A2-C3C27A35EA48}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\GameforgeLive\gfl_client.exe O87 - FAEL: "TCP Query User{9F5EB140-916D-4F29-968D-4342C30D2945}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe" [In-None-P6-TRUE] .(.Solid State Networks - TERA.) -- C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe O87 - FAEL: "UDP Query User{E35F4837-E12B-40C1-AA42-42BCAB9CCCC0}C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe" [In-None-P17-TRUE] .(.Solid State Networks - TERA.) -- C:\program files (x86)\gameforgelive\games\fra_fra\tera\tera-launcher.exe O87 - FAEL: "{235B58E4-8029-46C1-8D57-CB7FF385AAF6}" [Out-None-P6-TRUE] .(.Dll-FIles.Com - DLL-Files Fixer.) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer O87 - FAEL: "{8159C845-0B46-4C3C-BDB9-BD382F84AEB8}" [Out-None-P6-TRUE] .(.Dll-FIles.Com - DLL-Files Fixer.) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer O87 - FAEL: "{4CC18162-B6B6-4AE1-BB19-BB8B6621D5BF}" [Out-None-P6-TRUE] .(.Dll-FIles.Com - DLL-Files Fixer.) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer O87 - FAEL: "{85766EA1-C0E1-41EE-8E2B-D7043352070F}" [In-None-P6-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Blockade3d\main.exe O87 - FAEL: "{3E12ED35-693C-4153-892B-9256006FDF39}" [In-None-P17-TRUE] .(...) -- C:\Program Files (x86)\Steam\steamapps\common\Blockade3d\main.exe O87 - FAEL: "{D0C5BD61-1AA7-41B5-82C9-8AC1BDA54854}" [In-None-P6-TRUE] .(.id Software Inc. - Quake Live.) -- C:\Program Files (x86)\Steam\steamapps\common\Quake Live\quakelive_steam.exe O87 - FAEL: "{07974B05-6336-4B28-975D-D99B2D51C25E}" [In-None-P17-TRUE] .(.id Software Inc. - Quake Live.) -- C:\Program Files (x86)\Steam\steamapps\common\Quake Live\quakelive_steam.exe O87 - FAEL: "{8A9CDAC4-79B1-4944-87CF-D3F2182577AC}" [Out-None-P6-TRUE] .(.Dll-FIles.Com - DLL-Files Fixer.) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer O87 - FAEL: "{0190E7D3-6FA7-40EF-B357-FF9D3CDD3425}" [In-None-P6-TRUE] .(.mobogenie.com - downloader.) -- C:\Program Files (x86)\Mobogenie3\mobogenieP2sp.exe =>PUP.Optional.Mobogenie O87 - FAEL: "{3DAD9803-E470-4ED7-8C00-BA5BAA671CCE}" [In-None-P17-TRUE] .(.mobogenie.com - downloader.) -- C:\Program Files (x86)\Mobogenie3\mobogenieP2sp.exe =>PUP.Optional.Mobogenie O87 - FAEL: "{37F5A6E2-C711-4C04-846B-9604C329596B}" [Out-None-P6-TRUE] .(.Dll-FIles.Com - DLL-Files Fixer.) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) (15) - 28s SS - Demand [2014/10/25 12:59:46] [ 16064] Action! service (ACTION_SVC) . (...) - C:\Program Files (x86)\Mirillis\Action!\action_svc.exe SS - Demand [2015/07/12 15:34:01] [ 268976] Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SR - Auto [2015/04/03 15:42:26] [ 814880] Advanced SystemCare Service 8 (AdvancedSystemCareService8) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCService.exe SR - Auto [// ::] [ 244736] (AMD External Events Utility) . (.AMD.) - C:\WINDOWS\system32\atiesrxx.exe SS - Demand [2015/06/16 22:33:14] [ 433784] BlueStacks Android Service (BstHdAndroidSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-Service.exe SR - Auto [2015/06/16 22:33:36] [ 413304] BlueStacks Log Rotator Service (BstHdLogRotatorSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe SR - Auto [2015/06/16 22:34:50] [ 822904] BlueStacks Updater Service (BstHdUpdaterSvc) . (.BlueStack Systems, Inc..) - C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe SS - Disabled [2015/02/26 11:15:54] [ 1272592] Disc Soft Lite Bus Service (Disc Soft Lite Bus Service) . (.Disc Soft Ltd.) - C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe SR - Auto [2015/05/12 11:27:28] [ 878880] IMF Service (IMFservice) . (.IObit.) - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe SR - Auto [2015/06/02 11:03:40] [ 2904864] LiveUpdate (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe SR - Auto [2015/05/28 04:20:02] [ 127680] MobogenieService (MobogenieService) . (.Mobogenie.com.) - C:\Program Files (x86)\Mobogenie3\MobogenieService.exe SS - Auto [2015/02/18 20:11:32] [ 315488] Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - Disabled [2015/05/20 19:04:10] [ 1055008] StartMenu8 Service (StartMenuService) . (.IObit.) - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe SR - Demand [2015/06/04 20:56:54] [ 837312] Steam Client Service (Steam Client Service) . (.Valve Corporation.) - C:\Program Files (x86)\Common Files\Steam\SteamService.exe SS - Demand [2015/02/09 12:32:46] [ 792016] TunngleService (TunngleService) . (.Tunngle.net GmbH.) - C:\Program Files (x86)\Tunngle\TnglCtrl.exe ---\\ Scan Additionnel (O88) (24) - 0s C:\Program Files (x86)\Mobogenie3\MobogenieService.exe =>PUP.Optional.Mobogenie C:\Program Files (x86)\Mobogenie3\MoboGenieHelper.exe =>PUP.Optional.Mobogenie HKLM\SYSTEM\CurrentControlSet\Services\MobogenieService =>PUP.Optional.Mobogenie C:\WINDOWS\Tasks\DLL-Files FixerASKUSER.job =>PUP.Optional.DllFilesFixer C:\WINDOWS\Tasks\DLL-Files.Com Fixer_MONTHLY.job =>PUP.Optional.DllFilesFixer C:\WINDOWS\Tasks\DLL-Files.Com Fixer_Updates.job =>PUP.Optional.DllFilesFixer C:\WINDOWS\System32\Tasks\DLL-Files FixerASKUSER =>PUP.Optional.DllFilesFixer C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_MONTHLY =>PUP.Optional.DllFilesFixer C:\WINDOWS\System32\Tasks\DLL-Files.Com Fixer_Updates =>PUP.Optional.DllFilesFixer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Dll-Files Fixer_is1 =>PUP.Optional.DllFilesFixer HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie3 =>PUP.Optional.Mobogenie HKLM\SOFTWARE\Wow6432Node\dll-files.com =>PUP.Optional.DllFilesFixer HKLM\SOFTWARE\Wow6432Node\Mobogenie3 =>PUP.Optional.Mobogenie HKCU\SOFTWARE\dll-files.com =>PUP.Optional.DllFilesFixer HKCU\SOFTWARE\Mobogenie =>PUP.Optional.Mobogenie HKCU\SOFTWARE\Mobogenie3 =>PUP.Optional.Mobogenie C:\Program Files (x86)\Dll-Files.com Fixer =>PUP.Optional.DllFilesFixer C:\Program Files (x86)\Mobogenie3 =>PUP.Optional.Mobogenie C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dll-Files Fixer =>PUP.Optional.DllFilesFixer C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 =>PUP.Optional.Mobogenie C:\Users\ALEXANDRE\AppData\Roaming\dll-files.com =>PUP.Optional.DllFilesFixer C:\Users\ALEXANDRE\AppData\Roaming\Mobogenie =>PUP.Optional.Mobogenie C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe =>PUP.Optional.DllFilesFixer C:\Program Files (x86)\Mobogenie3\mobogenieP2sp.exe =>PUP.Optional.Mobogenie ---\\ Récapitulatif des détections trouvées sur votre station (13) - 0s http://www.nicolascoolman.fr/pup-mobogenie/ =>PUP.Optional.Mobogenie http://www.nicolascoolman.fr/toolbar-conduit/ =>PUP.Optional.Conduit http://www.nicolascoolman.fr/toolbar-ask/ =>Toolbar.Ask http://www.nicolascoolman.fr/spyware-gophotoit/ =>PUP.Optional.GophotoIt http://www.nicolascoolman.fr/hijacker-qvo6/ =>PUP.Optional.Qvo6 http://www.nicolascoolman.fr/pup-buenosearch/ =>PUP.Optional.BuenoSearch http://www.nicolascoolman.fr/adware-imbooster/ =>PUP.Optional.IMBooster http://www.nicolascoolman.fr/hijacker-smartbar/ =>PUP.Optional.SmartBar http://www.nicolascoolman.fr/hijacker-qone8 / =>PUP.Optional.Qone8 http://www.nicolascoolman.fr/blog =>PUP.Optional.MySearchDial http://www.nicolascoolman.fr/blog =>PUP.Optional.FlyAndSearch http://www.nicolascoolman.fr/pup-astromenda/ =>PUP.Optional.Astromenda http://www.nicolascoolman.fr/blog =>PUP.Optional.DllFilesFixer ~ End of the scan, 40864 items in 287 seconds (739)(0)()